5 matches found
CVE-2024-37247
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in twinpictures, baden03 jQuery T- Countdown Widget allows Stored XSS.This issue affects jQuery T- Countdown Widget: from n/a through 2.3.25...
CVE-2024-37247 WordPress jQuery T(-) Countdown Widget plugin <= 2.3.25 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in twinpictures, baden03 jQuery T- Countdown Widget allows Stored XSS.This issue affects jQuery T- Countdown Widget: from n/a through 2.3.25...
CVE-2024-37247
CVE-2024-37247 refers to a stored XSS in the WordPress plugin jQuery T(-) Countdown Widget (versions <= 2.3.25). The root cause is improper input neutralization during page generation in the plugin, enabling cross-site scripting when processing user-supplied data. Affected product: WordPress p...
CVE-2024-37247 WordPress jQuery T(-) Countdown Widget plugin <= 2.3.25 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in twinpictures, baden03 jQuery T- Countdown Widget allows Stored XSS.This issue affects jQuery T- Countdown Widget: from n/a through 2.3.25...
WordPress jQuery T(-) Countdown Widget Plugin <= 2.3.25 is vulnerable to Cross Site Scripting (XSS)
Software jQuery T- Countdown Widget Type Plugin Vulnerable versions = 2.3.25 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37247 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8be8473580c0 Credits LVT-tholv2k Required privile...